Project

General

Profile

bug #7563

requests with %2F in URL are rejected by apache

Added by Andreas Kohlbecker about 1 year ago. Updated 12 months ago.

Status:
Closed
Priority:
Highest
Category:
server-maintenance
Target version:
-
Start date:
07/19/2018
Due date:
% Done:

100%

Severity:
normal
Found in Version:
Tags:

Description

requests like http://test.e-taxonomy.eu/cdmserver/phycobank_production/registrationDTO/identifier/http%+3+A%2F%2Fphycobank.org%2F100105.json

are rejected by apache with a http 404 code. This blocks from resolving http identifiers like http://phycobank.org/100105.

By default apache does not allow %2F for / and %5C for \ in URLs:

The AllowEncodedSlashes-Direktive for apache can be set in the server configuration and also in vhost configurations:

  #
  # NOTE: AllowEncodedSlashes is off per default to prevent possible security vulnerabilities.
  #       To allow the cdmserver resolving http identifiers via HTTP GET requests it is required to 
  #       allow encoded slashes. See https://dev.e-taxonomy.eu/redmine/issues/7563  
  #
  AllowEncodedSlashes On

The edit servers and documentation needs to be adapted:

  1. edit-test: /etc/apache2/sites-available/default - DONE
  2. edit-community: /etc/apache2/sites-available/siteconf - DONE
  3. edit-jobber: - DONE
  4. edit-integration: - DONE
  5. edit-demo1: - DONE
  6. edit-demo2: - DONE
  7. add to cdmserver installation documentation https://cybertaxonomy.eu/cdmserver/installation - DONE

History

#1 Updated by Andreas Kohlbecker about 1 year ago

  • Description updated (diff)

#2 Updated by Andreas Kohlbecker about 1 year ago

  • Description updated (diff)
  • Status changed from New to In Progress
  • % Done changed from 0 to 30

#3 Updated by Andreas Kohlbecker about 1 year ago

  • Description updated (diff)

#4 Updated by Andreas Kohlbecker 12 months ago

  • Description updated (diff)
  • Status changed from In Progress to Resolved
  • Target version deleted (Release 5.2)
  • % Done changed from 30 to 100

#5 Updated by Andreas Kohlbecker 12 months ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 40 MB)